MAL-2025-187785 Malicious code in lightyear-cors-quasar-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 429afdc097b789886b2f73a40a1eb7753fceba27a84af51e06977ae222b5f0a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186554 Malicious code in dependencies-dynamo-optimize-css-assets-webpack-plugin-gatsby (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 56b88c2d2b382ffb9df5c83d2623b4d0be3b8e53cf60c14ef812d31a57ce193e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186053 Malicious code in centauri-module-adonis-reveal-md (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a700eed4fe580bb90a2d48dde70b037670425faae5851b9fb6a622d25c819e6d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190225 Malicious code in warp-mdx-hermes-europa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 591aee67ad544d545c8ad1b2c88a521109b44e77cf020d1e9d60b9d38d21d24c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186726 Malicious code in emulate-tau-grep-resolve-decompress (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 537111f2ce71d83f483cdf19d12bda80c8b9dbbb1a5081022d1fdbd029694e33 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189445 Malicious code in sequelize-ophiuchus-parcel-procyon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7f3fa16271461dc63fcaae96ca9ec7cfde5867ab6ac8758b77839076758c41ac This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185731 Malicious code in bad-eta-encrypt-error-signal (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1430a541231c581ecaecf6111ee0646d539ec2f560fe6401ba786567cbe1eef2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185598 Malicious code in astrochemistry-selenium-solis-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03e4945f4be5d41b84b61b8cdf7c141ff4cbd2a35808590735d6fda40200ddd8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185775 Malicious code in bellatrix-quantum-inquirer-child-process (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b5e4ec1ec944756074c8f5701d354998ef621ffeeabd85761b6dabf3e976c217 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188289 Malicious code in nightwatch-loopback-delphinus-ursa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86bd51a45b3ad13b8d4799d005c23c7a3c15863d564a5a40eeff8179e9414fd0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186939 Malicious code in farout-gatsby-install-ganymede (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a7f6433fbaa7d30fc2b59bb25148d19c4d0981e34ff8d8b492a4e527fdd6147 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190380 Malicious code in xenos-nconf-aurora-redis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3becc1558a04e4d28823447dc8ebf2bb654650dee47d902b2c138cf0f0d3ba20 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187261 Malicious code in hadron-vuetify-astrophysics-prompts (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3a023aa918b6df89cf02b3fb9cbff1e261dbb97330b127160a907246a48e94bf This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190187 Malicious code in vortex-husky-sqlite-exobiology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 90045f94e1d9d66252d467fa18357ac19aac151e5ea708173e4ac15adc8779ef This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187241 Malicious code in grus-crust-greatfilter-holography (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a838db28e4304c090d7abff45df6991037bf045cae83f8cec95623bbcf772a9b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189491 Malicious code in sigma-try-deserialize-slow-omega (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector aa134277639263f6619b38cf6bbfcabf6eb3a6b0fcf40df08f3f58df3e53a0ff This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187991 Malicious code in mesosphere-kinetic-ignite-tectonic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 20b5b6d11a7de70ebf25c858d96c58eb3b08a382c9a7864827f96f9a791eed7b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185414 Malicious code in aldebaran-biosignature-darkenergy-pavo (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86ea8e131d374cb063a0b842043d6ab3be61a8a7771fcf3a8ccd89092e836b68 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188036 Malicious code in middleware-antd-hapi-nightwatch (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f16ab9c55f7d6888829aa508c89f33d4f74cfb7599bff11339ce70c0d583a3c8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-186375 Malicious code in cron-rho-analyze-socket-air (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b3ccfff0cb2760978774c62072d2c40b1b8f36364183047d5546f5c67d0fa50b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...